Why cyber poverty is a serious problem in 2024

In 2023, upcoming Black Hat MEA speaker Ramy Houssaini (Chief Cyber & Technology Risk Officer, & Group Privacy Officer, at BNP Paribas) was one of a group of security experts who teamed up to launch the Cyber Poverty Line Institute. 

Now, a year on, we caught up with Ramy to gain a little insight into the state of cyber poverty – and ask why cybersecurity leaders need to collaborate and close the gap between those who are informed and protected, and those who aren’t. 

We’re always eager to learn. So we also asked what we can do at Black Hat MEA to facilitate this work and play our role in combating cyber poverty. 

Here’s what he told us. 

Could you describe the vision behind the Cyber Poverty Line Institute, and why its work is so important?

“The Cyber Poverty Line Institute (CPLI) is dedicated to closing the widening cybersecurity gap, often referred to as ‘cyber poverty.’ This growing divide poses significant risks not just to individual organisations, but to the global economic and social fabric. 

“CPLI aims to tackle this challenge by developing a global cyber enablement platform, driven by strategic public-private partnerships, to elevate cybersecurity standards in underserved regions and sectors.”

Is cyber poverty a growing problem?

“Yes, cyber poverty is a growing problem, as the digital landscape rapidly evolves – deepening the divide between those with robust cybersecurity resources and those without.

“Several factors contribute to the growing problem of cyber poverty:

• Increased cyber threats: Cyberattacks are becoming more sophisticated and frequent. For instance, while large corporations often have the resources to fend off these attacks, small businesses and local governments may not. A small business, lacking advanced cybersecurity, might fall victim to ransomware, leading to financial ruin.
• Resource disparities: Wealthier organisations and nations can afford cutting-edge cybersecurity, but smaller entities or those in less developed regions cannot. For example, a rural hospital might struggle to secure sensitive patient data due to limited funds, making it a prime target for cybercriminals.
• Global interconnectivity: The global economy is deeply interconnected, meaning a cyber vulnerability in one area can have far-reaching consequences. A breach in a small supplier's system could compromise the entire supply chain, affecting major corporations and critical infrastructure.
• Lack of awareness and education: Many organisations and individuals are unaware of the cyber risks they face or how to mitigate them. For example, a small municipality may not realise the importance of investing in cybersecurity until they experience a debilitating attack, highlighting the need for education and proactive measures.
• Evolving technology: As technology advances, cybersecurity becomes more complex, leaving those who cannot keep up increasingly vulnerable. Outdated security measures in a school district’s network could expose sensitive student data to cyber threats.

“Addressing cyber poverty is crucial to ensuring that all organisations, regardless of size or location, have the ability to protect themselves against cyber threats. Without intervention, the growing divide in cybersecurity capabilities could lead to more frequent and severe cyber incidents, with widespread economic and social consequences.”

What do you think events like Black Hat MEA could do to contribute to reducing social imbalances relating to cyber?

“Black Hat events provide invaluable opportunities for cybersecurity professionals to exchange cutting-edge knowledge and insights, enhancing their expertise and staying abreast of the latest threats and solutions. 

“They facilitate critical networking and collaboration among industry leaders, which can drive innovation and improve cybersecurity practices across organisations. By spotlighting emerging threats and vulnerabilities, Black Hat events help raise awareness and drive proactive measures to strengthen global cybersecurity resilience. 

“Specifically, events like Black Hat MEA are crucial in addressing social imbalances in cybersecurity by facilitating knowledge sharing, improving resource access, and fostering a more inclusive cyber community. 

“Here’s how:

• Educational outreach and training: Black Hat MEA can provide workshops, seminars, and hands-on training specifically designed for participants from underserved regions. This targeted education helps bridge the gap between well-resourced and less-resourced communities, equipping them with essential cybersecurity skills.
• Scholarships and sponsorships: Offering scholarships and sponsored passes to attendees from developing regions or underrepresented groups ensures diverse perspectives are included in cybersecurity discussions. This initiative enables those who might lack access to participate in critical industry events and enhance their knowledge.
• Networking and collaboration opportunities:  By connecting cybersecurity experts, businesses, and governments from different regions, Black Hat MEA can foster collaborations aimed at strengthening cybersecurity infrastructure in less-developed areas. These connections promote a more equitable distribution of resources and expertise.
• Focus on local challenges: Black Hat MEA can address region-specific cybersecurity issues, facilitating the development of strategies tailored to the unique needs of communities within the Middle East and Africa. This localised approach directly targets and alleviates cyber poverty.
• Public-private partnerships:  The event can drive public-private partnerships focused on building cybersecurity capabilities in underserved regions. Such collaborations can channel investments into education, infrastructure, and awareness, working to level the cybersecurity playing field.

“Overall, by highlighting the cybersecurity challenges faced by less-resourced regions, Black Hat MEA can draw global attention and support. This increased visibility can lead to greater funding, innovation, and collective efforts to close the cybersecurity gap.” 

Thanks to Ramy Houssaini at BNP Paribas. There’s still time to register now and attend Black Hat MEA 2024, where you’ll learn directly from the industry’s leading experts.